How to enable SSL for the ENTIRE website?
Hi,
I have a SSL certificate setup and running fine with Zen Cart. The thing is I have the website split into 2 different sections...
The normal website is for retail customers (www.mydomain.com). I then have a separate install of Zen Cart at: www.mydomain.com/trade This is meant for trade customers only.
Due to the way the client wanted it setup they required that all trade customers would have a single username and password to log in (which is supplied to them manually). Therefore I used htaccess to password protect the /trade directory of the website.
I use a https link for the trade section so that the login box for the trade section doesn't display a security error in IE. This all works fine, but when you log in and then click a link to a category or product the links are not using SSL (https) and thus the htaccess requires you to log in again.
If I could change the entire zen cart installation to run under SSL it wouldn't require the double login. I realise it's not ideal to run an entire site using SSL (slowness etc) but the traffic in the trade area is likely to be absolutely minimal, so I don't think it would be a problem (the website is pretty lightweight anyway).
Does anyone know how to do this? Basically I need all links to use https rather than http.
Buttons I have created myself can obviously be changed pretty easily but the automated links such as categories etc all use http by default.
Any help or advise would be greatly appreciated! :D
Re: How to enable SSL for the ENTIRE website
Edit the 2 configure.php files and toward the top where the domain is defined as
http and https
Change the http entries to https
Re: How to enable SSL for the ENTIRE website
[unnecessary comment made] deleted
Re: How to enable SSL for the ENTIRE website
Quote:
Originally Posted by
kobra
Edit the 2 configure.php files and toward the top where the domain is defined as
http and https
Change the http entries to https
Hi thanks for the reply :smile:
forgot to mention I'd already tried that:
changed includes/configure.php to:
Code:
// Define the webserver and path parameters
// HTTP_SERVER is your Main webserver: eg-http://www.your_domain.com
// HTTPS_SERVER is your Secure webserver: eg-https://www.your_domain.com
define('HTTP_SERVER', 'https://mywebsite.com/trade');
define('HTTPS_SERVER', 'https://mywebsite.com/trade');
// Use secure webserver for checkout procedure?
define('ENABLE_SSL', 'true');
and changed admin/includes/configure.php to:
Code:
* If you desire your *entire* admin to be SSL-protected, make sure you use a "https:" URL for all 4 of the following:
*/
define('HTTP_SERVER', 'https://mywebsite.com/trade');
define('HTTPS_SERVER', 'https://mywebsite.com/trade');
define('HTTP_CATALOG_SERVER', 'https://mywebsite.com/trade');
define('HTTPS_CATALOG_SERVER', 'https://mywebsite.com/trade');
// Use secure webserver for catalog module and/or admin areas?
define('ENABLE_SSL_CATALOG', 'true');
define('ENABLE_SSL_ADMIN', 'true');
And still after that the category links etc are all still http :(
Re: How to enable SSL for the ENTIRE website
anyone got any ideas on this one?
Re: How to enable SSL for the ENTIRE website
If you are using a Login box on the website then remove that from the column, which will force everyone to use the standard login link.
Vger
